STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 1 hour ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to F5 BIG-IP Device Management Security Technical Implementation Guide

V-229007

CAT II (Medium)

The BIG-IP appliance must be configured to dynamically manage user accounts.

Rule ID

SV-229007r961863_rule

STIG

F5 BIG-IP Device Management Security Technical Implementation Guide

Version

V2R4

CCIs

CCI-000366CCI-001976

Discussion

Dynamic user account management prevents disruption of operations by minimizing the need for system restarts. Dynamic establishment of new user accounts will occur while the system is operational. New user accounts or changes to existing user accounts must take effect without the need for a system or session restart. Pre-established trust relationships and mechanisms with appropriate authorities (e.g., Active Directory or authentication server) that validate each user account are essential to prevent unauthorized access by changed or revoked accounts.

Check Content

Verify the BIG-IP appliance is configured to use a properly configured authentication server that dynamically manages user accounts. 

Navigate to the BIG-IP System manager >> System >> Users >> Authentication.

Verify that "User Directory" is set to an approved authentication server type that is configured to dynamically manage user accounts.

If the BIG-IP appliance is not configured to use a properly configured authentication server to dynamically manage user accounts, this is a finding.

Fix Text

Configure the BIG-IP appliance to use a properly configured authentication server to dynamically manage user accounts.